On 5/20/05, Gabriel Gunderson <[EMAIL PROTECTED]> wrote: > Anyone else get sick of hearing this? > > quote (emphasis mine) from : > http://os.newsforge.com/article.pl?sid=05/05/20/1426216&tid=8 > > OpenBSD is a complete, relatively small-footprint, Unix-derived > operating system. Originally forked from NetBSD in 1996, ****the project > has suffered only one remote security flaw in the default installation > in more than eight years.**** > > > It's the "default installation" part that bugs me. How hard is it to > turn off some services? I don't mean to detract from what they are > doing - in fact, I'm quite interested in where they are going with > 3.7. > > I guess I'm just saying it gets old.
It sounds like you're assuming that they do this by disabling services. Last time I installed OpenBSD (some time ago, I'll admit) I think it came with sendmail and apache running (and probably some other stuff) in the default install. So secure by default really does mean something. .===================================. | This has been a P.L.U.G. mailing. | | Don't Fear the Penguin. | | IRC: #utah at irc.freenode.net | `==================================='
